opensourcemirror
/
dokuwiki
mirror of https://github.com/splitbrain/dokuwiki.git
1
0
Fork 0
Code Issues Releases Wiki Activity
dokuwiki/lib
History
Andreas Gohr 8e1fb58763 SECURITY escape user properties in user manager #1081 
The user properties (login, real name, etc) where not properly escaped
in the user manager's edit form. This allowed a XSS attack on the
superuser by registered users.

Thanks to Filippo Cavallarin from www.segment.technology for discovering
this bug.
 		2015-03-19 20:32:52 +01:00
..
exe Quick fix for #765 - ACL checks in the media manager ajax calls 2014-06-25 18:58:26 +02:00
images Merge pull request #527 from splitbrain/userlink 2014-03-16 21:52:10 +01:00
plugins SECURITY escape user properties in user manager #1081 2015-03-19 20:32:52 +01:00
scripts update deprecation stuff for dw_qearch 2014-05-05 13:25:58 +02:00
styles included geshi styles per @import, removed from lib/exe/css 2014-02-15 11:37:01 +00:00
tpl oops, removed unintentionally added CSS files 2014-04-06 18:35:17 +01:00
index.html changed all doctypes to html5 doctype 2012-07-14 12:10:08 +01:00